ASA firewall penetration testing

Unanswered Question
Jun 14th, 2007
User Badges:

Hi forum,

Due to SOX requirements, we are supposed to perform penetration testing on the firewall to ensure it is working as accordingly. There are tons of info on the web, I am almost complete novice at this, I would appreciate if you could advise me on how should I go about doing this? I need to write a procedure to do this yearly.

Kind regards,


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (2 ratings)
srue Thu, 06/14/2007 - 18:43
User Badges:
  • Blue, 1500 points or more

download Nessus ( ) - the free version. It's one of the better scanners for it's price (free). The biggest difference between the free version and the licensed version is updates are delayed a week for the free version.

lots of good options and tests for TONS of vulnerabilities.

anandramapathy Thu, 06/14/2007 - 23:01
User Badges:
  • Bronze, 100 points or more

There is a GUI frontend which works well once it is configured. YOu can try that too.

It is called INPROTECT. Try that out.

paulnigel Thu, 06/14/2007 - 23:05
User Badges:

Thank you everyone for being so helpful. :>

Thanks much,


This Discussion